Ssh 宋承元'；t今天使用公钥登录（！）-调试给出奇怪的输出_Ssh

Ssh 宋承元'；t今天使用公钥登录（！）-调试给出奇怪的输出

ssh

Ssh 宋承元'；t今天使用公钥登录（！）-调试给出奇怪的输出,ssh,Ssh,“自周五以来没有任何变化。”但请参见下文。今天早上（！），Bitbucket.org拒绝了我的ssh尝试： Connection blocked because server only allows public key authentication. Please contact your network administrator. 我在这里遵循了另一个建议并尝试了ssh-Tvgit@bitbucket.org（这是git remote-v所显示的用户ID，在输出中看到了这一奇怪之处：

“自周五以来没有任何变化。”但请参见下文。今天早上（！），Bitbucket.org拒绝了我的

ssh

尝试：

Connection blocked because server only allows public key authentication. 
Please contact your network administrator.

我在这里遵循了另一个建议并尝试了

ssh-Tvgit@bitbucket.org

（这是git remote-v所显示的用户ID，在输出中看到了这一奇怪之处：

编辑：以下是完整的输出：

$ ssh-agent
SSH_AUTH_SOCK=/tmp/ssh-F8PhcLGt2yVB/agent.11836; export SSH_AUTH_SOCK;
SSH_AGENT_PID=11837; export SSH_AGENT_PID;
echo Agent pid 11837;

$ ssh -Tv git@bitbucket.org
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n  7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to bitbucket.org [18.205.93.0] port 22.
debug1: Connection established.
debug1: identity file /home/mike/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version conker_31073e5a11 app-191
debug1: no match: conker_31073e5a11 app-191
debug1: Authenticating to bitbucket.org:22 as 'git'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256@libssh.org
debug1: kex: host key algorithm: ssh-rsa
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ssh-rsa SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM.
Please contact your system administrator.
Add correct host key in /home/mike/.ssh/known_hosts to get rid of this message.
Offending RSA key in /home/mike/.ssh/known_hosts:2
  remove with:
  ssh-keygen -f "/home/mike/.ssh/known_hosts" -R "bitbucket.org"
RSA host key for bitbucket.org has changed and you have requested strict checking.
Host key verification failed.

$ ssh-keygen -f "/home/mike/.ssh/known_hosts" -R "bitbucket.org"
# Host bitbucket.org found: line 2
/home/mike/.ssh/known_hosts updated.
Original contents retained as /home/mike/.ssh/known_hosts.old

$ ssh -Tv git@bitbucket.org
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n  7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to bitbucket.org [18.205.93.1] port 22.
debug1: Connection established.
debug1: identity file /home/mike/.ssh/id_rsa type 0
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/mike/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
debug1: Remote protocol version 2.0, remote software version conker_31073e5a11 app-155
debug1: no match: conker_31073e5a11 app-155
debug1: Authenticating to bitbucket.org:22 as 'git'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256@libssh.org
debug1: kex: host key algorithm: ssh-rsa
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ssh-rsa SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM
The authenticity of host 'bitbucket.org (18.205.93.1)' can't be established.
RSA key fingerprint is SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'bitbucket.org' (RSA) to the list of known hosts.
Warning: the RSA host key for 'bitbucket.org' differs from the key for the IP address '18.205.93.1'
Offending key for IP in /home/mike/.ssh/known_hosts:3
Are you sure you want to continue connecting (yes/no)? yes
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_SERVICE_ACCEPT received
Received disconnect from 18.205.93.1 port 22:2: Connection blocked because server only allows public key authentication. Please contact your network administrator.
Disconnected from 18.205.93.1 port 22

又一次：“自周五以来，一切都没有改变。”我想我已经想好了一切！那么，到底还有什么可能是错的呢？为什么我和同事们今天突然开始这样做？（几个月来，

/etc/ssh

中没有任何更改。同样，

~/.ssh

中的证书也有正确的权限。）

另一次编辑：下面是当我删除

已知主机时发生的情况：

$ ssh-agent SSH_AUTH_SOCK=/tmp/ssh-F8PhcLGt2yVB/agent.11836; export SSH_AUTH_SOCK; SSH_AGENT_PID=11837; export SSH_AGENT_PID; echo Agent pid 11837; $ ssh -Tv git@bitbucket.org OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017 debug1: Reading configuration data /etc/ssh/ssh_config debug1: /etc/ssh/ssh_config line 19: Applying options for * debug1: Connecting to bitbucket.org [18.205.93.0] port 22. debug1: Connection established. debug1: identity file /home/mike/.ssh/id_rsa type 0 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_rsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_dsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_dsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ecdsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ecdsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ed25519 type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ed25519-cert type -1 debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3 debug1: Remote protocol version 2.0, remote software version conker_31073e5a11 app-191 debug1: no match: conker_31073e5a11 app-191 debug1: Authenticating to bitbucket.org:22 as 'git' debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: algorithm: curve25519-sha256@libssh.org debug1: kex: host key algorithm: ssh-rsa debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: expecting SSH2_MSG_KEX_ECDH_REPLY debug1: Server host key: ssh-rsa SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! Someone could be eavesdropping on you right now (man-in-the-middle attack)! It is also possible that a host key has just been changed. The fingerprint for the RSA key sent by the remote host is SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM. Please contact your system administrator. Add correct host key in /home/mike/.ssh/known_hosts to get rid of this message. Offending RSA key in /home/mike/.ssh/known_hosts:2 remove with: ssh-keygen -f "/home/mike/.ssh/known_hosts" -R "bitbucket.org" RSA host key for bitbucket.org has changed and you have requested strict checking. Host key verification failed. $ ssh-keygen -f "/home/mike/.ssh/known_hosts" -R "bitbucket.org" # Host bitbucket.org found: line 2 /home/mike/.ssh/known_hosts updated. Original contents retained as /home/mike/.ssh/known_hosts.old $ ssh -Tv git@bitbucket.org OpenSSH_7.6p1 Ubuntu-4ubuntu0.3, OpenSSL 1.0.2n 7 Dec 2017 debug1: Reading configuration data /etc/ssh/ssh_config debug1: /etc/ssh/ssh_config line 19: Applying options for * debug1: Connecting to bitbucket.org [18.205.93.1] port 22. debug1: Connection established. debug1: identity file /home/mike/.ssh/id_rsa type 0 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_rsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_dsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_dsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ecdsa type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ecdsa-cert type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ed25519 type -1 debug1: key_load_public: No such file or directory debug1: identity file /home/mike/.ssh/id_ed25519-cert type -1 debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3 debug1: Remote protocol version 2.0, remote software version conker_31073e5a11 app-155 debug1: no match: conker_31073e5a11 app-155 debug1: Authenticating to bitbucket.org:22 as 'git' debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: algorithm: curve25519-sha256@libssh.org debug1: kex: host key algorithm: ssh-rsa debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none debug1: expecting SSH2_MSG_KEX_ECDH_REPLY debug1: Server host key: ssh-rsa SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM The authenticity of host 'bitbucket.org (18.205.93.1)' can't be established. RSA key fingerprint is SHA256:6tASx4IX+FSngemFsQuAIyt0aQ/+fMAyzXBRWRajoBM. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'bitbucket.org' (RSA) to the list of known hosts. Warning: the RSA host key for 'bitbucket.org' differs from the key for the IP address '18.205.93.1' Offending key for IP in /home/mike/.ssh/known_hosts:3 Are you sure you want to continue connecting (yes/no)? yes debug1: rekey after 134217728 blocks debug1: SSH2_MSG_NEWKEYS sent debug1: expecting SSH2_MSG_NEWKEYS debug1: SSH2_MSG_NEWKEYS received debug1: rekey after 134217728 blocks debug1: SSH2_MSG_SERVICE_ACCEPT received Received disconnect from 18.205.93.1 port 22:2: Connection blocked because server only allows public key authentication. Please contact your network administrator. Disconnected from 18.205.93.1 port 22 …这一定很重要… 我认为这种情况已经得到了解释，因此，[SOLVED]基于我在本页找到的信息，所以： …在这里，“ALuViAn”的一条隐晦评论将我带到了这个页面： …其“答案1”似乎与这一问题直接相关该答案涉及以下两个外部页面：以及：结论似乎是“中间有一个人”（在公司的网络安全基础设施中）。过度热情的网络防御软件。这似乎也被以下事实所证实：（a）其他城市的办公室没有遇到这个问题；（b）如果我打开VPN客户端，从而通过出现在“其他地方”的VPN隧道发送所有流量，我也不会遇到这种情况希望这对某人有所帮助… “debug1:key\u load\u public:没有这样的文件或目录”仅供参考，“key\u load\u public”行是关于“身份文件”的下面的一行，而不是前面的一行。谢谢你，肯斯特。我现在修改了这个问题，以包括我现在尝试ssh 时收到的全部输出。阅读日志警告：远程主机标识已更改！ …主机密钥验证失败。 Jeb，“这是问题的一部分。”我不知道为什么会发生这种情况。此外，当我在~/.ssh/known_hosts 中丢弃旧的主机id时，身份验证失败的核心问题仍然存在（通常不会存储新的主机id）所以，是的，我知道ssh 想告诉我什么。但是，我可以登录到Bitbucket网站，非常清楚地看到正确的ssh公钥在那里…就像去年10月以来一样！我在周日成功地进行了git拉取，第二天就来了，并且…（！！）我添加了更多的输出…当我删除known_hosts 条目时会发生什么。从上面可以看到，一条我以前没有看到的新消息刚刚出现。。。